AndroBugs.com


We provide advanced security consulting services for your Android Apps. We are proficient in finding vulnerabilities and potential critical security issues in your app. AndroBugs makes sure every component in your app is secure enough and your logic is correct with no security flaws for hackers to exploit.

Download the Open-Sourced Version at Github »   Follow AndroBugs on Twitter   警告:購買前必讀

Our Responsible Disclosure:

We found security issues in Android products or mobile web apps by the following companies and made responsible disclosure about them.
You can now find our name("AndroBugs" or "Yu-Cheng") on their Security Hall of Fame or Acknowledgement List.
Company Hall of Fame (or Acknowledgement List) Additional Information
If you do not want your company listed here, please contact us.
Google Android https://source.android.com/devices/tech/security/acknowledgements.html Including Google Chrome and
apps in AOSP.
Facebook https://www.facebook.com/whitehat/thanks/ Android SDK by Facebook and
Facebook Bug Bounty Payment Website
Twitter https://hackerone.com/twitter/thanks Twitter Mobile Web
Microsoft https://www.microsoft.com/en-us/msrc/researcher-acknowledgments-online-services-archive Including Office Mobile and Bing
Yahoo! https://hackerone.com/yahoo/thanks
Alibaba(阿里巴巴) http://security.alibaba.com/top.htm?time=201404 Security issues in Taobao and Alipay.
Rank top 4 in April, 2014 (2014-04).
Evernote http://evernote.com/security/
AT&T https://bugbounty.att.com/hof.php Rank top 10 in 2Q2015 & 2Q2014.
Yandex https://yandex.com/bugbounty/hall-of-fame/all/ Including iOS app by Yandex.
Badoo http://corp.badoo.com/security-board/
Sony https://secure.sony.net/hallofthanks
Sina(新浪微博) http://sec.sina.com.cn/Hero/index?year=2014&month=4 Rank top 8 in April, 2014.
Mail.Ru https://hackerone.com/mailru/thanks
Baidu(百度) http://www.wooyun.org/bugs/wooyun-2014-054438
Tencent(腾讯) A vulnerability in Android SDK by Tencent.
VK https://hackerone.com/androbugs
Wickr Several vulnerabilities in Wickr Android.
Indeed https://bugcrowd.com/indeed/hall-of-fame
Tesla Motors https://bugcrowd.com/tesla/hall-of-fame
Spotify https://bugcrowd.com/spotify/hall-of-fame
Qualcomm https://www.qualcomm.com/company/product-security/hall-of-fame
eBay http://pages.ebay.com/securitycenter/ResearchersAcknowledgement.html
LINE WhosCall A vulnerability in LINE WhosCall.
Tumblr https://hackerone.com/androbugs

【警告 (For Chinese users only)】
請勿與清大孫宏民教授購買App安全漏洞檢測系統(MalDroid)或服務,
該系統並非AndroBugs的商業版或強化版,請勿誤解,
您很有可能購買到一個檢測能力較Github上的AndroBugs為差勁的版本。